DevSecOps - Security Engineering

Powens

  • L'Hospitalet de Llobregat, Barcelona
  • Permanente
  • Tiempo completo
  • Hace 1 mes
A pioneer and market leader in Embedded Banking, we are committed to supporting financial players in designing services and payment experiences that users love.Our cutting-edge, end-to-end platform empowers leading financial services companies to access accurate financial data from multiple sources. Our products allow you to automate processes, improve risk management, make & receive payments, shorten decision-making times, and enrich customer journeys.We are a trusted partner to the top financial industry players and software editors in Europe, and we have achieved this by scouting the best talents. Joining us means being a part of an inclusive, multicultural, and international team.What is the Role?We are looking for a skilled and pragmatic Security Engineer/DevSecOps to help us elevate our infrastructure and application security practices.You will report directly to the VP of Architecture & Infrastructure and work closely with our CISO to design and implement security measures across our cloud platforms, Kubernetes clusters, CI/CD pipelines, and internal tooling. This is a hands-on role, ideal for someone who loves shipping secure systems, building automation, and solving real-world security challenges.What will be your main responsibilities?
  • Implement and enforce security best practices in our AWS-based infrastructure (IAM, networking, secrets, etc.).
  • Implement and enforce security best practices in our OVH infrastructure being as standard as possible with the AWS infrastructure.
  • Contribute to Kubernetes and Linux hardening across production workloads.
  • Develop and maintain tooling to automate security controls, detection, and alerting.
  • Participate in infrastructure and application design reviews from a security standpoint.
  • Investigate vulnerabilities and support remediation efforts following internal or external audits/pentests.
  • Collaborate with DevOps and development teams to shift security left in our SDLC.
  • Help document, standardize, and evangelize secure practices across the organization.
Which experience and skills do we seek?
  • 4+ years of experience in a Security Engineering or Infrastructure Security role
  • Strong knowledge of cloud infrastructure (ideally AWS), Linux, and container-based environments
  • Hands-on experience with IaC (Terraform, Helm, etc.) and CI/CD pipelines
  • Scripting or development skills (Python, Bash, or similar)
  • Familiarity with security monitoring tools and SIEM solutions
  • Solid understanding of common threats, misconfigurations, and mitigation strategies
  • A pragmatic mindset: you prioritize impact, not checklists
And what would be great to have?
  • Experience with Kubernetes security (RBAC, PSP/OPA/Kyverno, admission controllers).
  • Exposure to compliance frameworks (ISO 27001, SOC2, etc.).
  • Contributions to security tooling, open source projects, or blog posts.

Powens